What is ‘WanaCrypt0r 2.0’ ransomware and why is it attacking the NHS?

WanaCrypt0r 2.0 malicious software has hit the NHS, some of Spains largest companies including Telefónica, as well as computers across Russia, the Ukraine and Taiwan, leading to PCs and data being locked up and held for ransom.The ransomware uses a vulnerability first revealed to the public as part of a leaked stash of NSA-related documents to infect Windows PCs and encrypt their contents, before demanding payment in the hundreds of dollars for the key to decrypt crucial files.The co-ordinated attack had managed to infect large numbers of computers across the health service less than six hours after it was first noticed by security researchers, in part due to its ability to spread within networks from PC to PCThe ransomware has already caused hospitals across England to divert emergency patients  but what is it, how does it spread and why is this happening in the first place?

A global cyber attack on Friday renewed concerns about whether the U.S. National Security Agency and other countries’ intelligence services too often hoard software vulnerabilities for offensive purposes, rather than quickly alerting technology companies to such flaws.Hacking tools believed to belong to the NSA that were leaked online last month appear to be the root cause of a major cyber attack unfurling throughout Europe and beyond, security researchers said, stoking fears that the spy agency’s powerful cyber weapons had been stolen and repurposed by hackers with nefarious goals.

FedEx said on Friday it was experiencing issues with some of its Microsoft Corp Windows systems in relation to a global cyber attack that had disrupted hospitals in England and infected computers in dozens of other countries around the world.”Like many other companies, FedEx is experiencing interference with some of our Windows-based systems caused by malware,” a spokeswoman said in a statement. “We are implementing remediation steps as quickly as possible.”

Microsoft said on Friday its engineers had added detection and protection against a ransomware attack that had disrupted hospitals in England and infected computers in dozens of other countries around the world.”Today our engineers added detection and protection against new malicious software known as Ransom:Win32.WannaCrypt,” a Microsoft spokesman said in a statement. It said the company was working with its customers to provide additional assistance.

Hackers Hit Dozens of Countries Exploiting Stolen N.S.A. Tool – The New York Times

Right Now: Unknown hackers launched simultaneous attacks against computer systems around the world, holding vital information for ransom and throwing government agencies, businesses and hospitals into chaos.? More than 45,000 attacks have been recorded in as many as 74 countries, including Russia, Turkey, Vietnam, the Philippines and Japan, according to Kaspersky Labs, a Russian cybersecurity firm.? Among the companies and government agencies affected were FedEx, Britains National Health Service and the Russian Interior Ministry.

What We Know and Dont Know About the International Cyberattack – The New York Times

Right Now: Unknown hackers launched simultaneous attacks against computer systems around the world, holding vital information for ransom and throwing government agencies, businesses and hospitals into chaos.? More than 45,000 attacks have been recorded in as many as 74 countries, including Russia, Turkey, Vietnam, the Philippines and Japan, according to Kaspersky Labs, a Russian cybersecurity firm.? Among the companies and government agencies affected were FedEx, Britains National Health Service and the Russian Interior Ministry.

Hackers Hit Dozens of Countries Exploiting Stolen N.S.A. Tool – The New York Times

SAN FRANCISCO  Hackers exploiting malicious software stolen from the National Security Agency executed damaging cyberattacks on Friday that hit dozens of countries worldwide, forcing Britains public health system to send patients away, freezing computers at Russias Interior Ministry and wreaking havoc on tens of thousands of computers elsewhere.The attacks amounted to an audacious global blackmail attempt spread by the internet and underscored the vulnerabilities of the digital age.Transmitted via email, the malicious software locked British hospitals out of their computer systems and demanded ransom before users could be let back in  with a threat that data would be destroyed if the demands were not met.

An accidental hero has halted the global spread of the WannaCry ransomware, reportedly by spending a few dollars on registering a domain name hidden in the malware.The ransomware has wreaked havoc on organizations including FedEx and Telefonica, as well as the UKs National Health Service (NHS), where operations were cancelled, x-rays, test results and patient records became unavailable and phones did not work.Massive ransomware cyber-attack hits nearly 100 countries around the world Read moreHowever, a UK cybersecurity researcher tweeting as @malwaretechblog, with the help of Darien Huss from security firm Proofpoint, found and activated a kill switch in the malicious software.